pkg:npm/url-parse

8 total CVEsCRITICAL2MEDIUM6

✅ Check your installed version

All known vulnerabilities

  • CRITICAL10.0CVE-2018-3774Open Redirect in url-parse
    >= 1.0.0, < 1.4.3
  • CRITICAL9.1CVE-2022-0686Authorization Bypass Through User-Controlled Key in url-parse
    from 0, < 1.5.8
  • MEDIUM6.5CVE-2022-0691url-parse incorrectly parses hostname / protocol due to unstripped leading control characters.
    >= 0.1.0, < 1.5.9
  • MEDIUM6.5CVE-2022-0639url-parse Incorrectly parses URLs that include an '@'
    >= 1.0.0, < 1.5.7
  • MEDIUM6.1CVE-2021-3664Open redirect in url-parse
    >= 0.1.0, < 1.5.2
  • MEDIUM5.3CVE-2022-0512Authorization bypass in url-parse
    >= 0.1.0, < 1.5.6
  • MEDIUM5.3CVE-2020-8124Improper Validation and Sanitization in url-parse
    >= 0.1.0, < 1.4.5
  • MEDIUM5.3CVE-2021-27515Path traversal in url-parse
    >= 0.1.0, < 1.5.0